Job Description

Position Summary:

The Enterprise Security Engineer is responsible for the engineering of security solutions for the protection of computer systems, networks and data, from the identification of requirements and evaluation of solutions, through to design and implementation.

Essential Functions:

* Determine requirements, and research and evaluate security solutions; provide recommendations for licensing.
* Design, implement and support security solutions.
* Prepare and document standard operating system procedures
* Configure and troubleshoot security infrastructure devices
* Develop technical solutions and new security tools to help mitigate security vulnerabilities and to automate repeatable tasks
* Write comprehensive reports, including assessment-based findings, outcomes and propositions for further security system enhancement
* Administer IPG's security information and event management system (Splunk). Design and implement further system enhancements.
* Provide consulting and advice to IPG's CISO team, Engineering team and agency IT teams in research and design of secure solutions.
* Liaise with suppliers during professional services engagements.
* Enhance and evangelize the usage of threat modelling tools and procedures in the organization.
* Determine the scope of penetration tests; coordinate with suppliers; review test results and prepare a report for stakeholders.
* Recommend enhancements to IPG's Enterprise Security Architecture tools and procedures
* Apply the Enterprise Security Architecture to identify controls like MFA, encryption, monitoring DAST etc. to be applied across the enterprise, and working with IPG and agency IT teams to incorporate these into their roadmaps.

Experience, Knowledge, Skills and Abilities:

* Strong experience of designing and implementing security systems in conformance with security policy, security standards and best practices
* Experience of administering, designing and implementing Splunk.
* Indexers, forwarders, search-heads
* Linux and Windows agents
* Capacity and performance management
* Troubleshooting and opening support cases with Splunk
* Deployment of Splunk Enterprise Security and of Splunk Apps/Add-ons for ingestion of new data
* Experience of Common Information Model (CIM) tagging of data
* Correlation of data and search queries
* Creation of new dashboards and reports
* Experience of the design and implementation of:
* Web application firewalls, web services security and API gateways
* Database security solutions such as encryption, data tokenization and masking, database firewalls and database access monitoring
* Authentication mechanisms (multi-factor authentication, single sign-on and public key infrastructure)
* Mobile application and device security controls
* Microsoft Active Directory security controls
* Office 365 security controls (data loss prevention, encryption, DMARC)
* Amazon Web Services and Microsoft Azure security controls
* Public key infrastructure and privileged account management
* Experience or working knowledge of penetration testing methods and tools (Kali Linux, Metasploit, Mimikatz)
* A proven ability to interface across a global organization with other teams, such as EIS Engineering and Security, Corporate Applications, Enterprise Applications, Internal Audit, agency CIOs, and agency security teams and compliance coordinators, etc.
* An analytical demeanour and the ability to effectively communicate with individuals across all levels the organization
* Excellent written and verbal communications skills
* Ability to adjust to changing priorities while multitasking effectively
* Working knowledge of compliance frameworks and security management standards (e.g., ISO 27001, COBIT, NIST CSF, CIS Controls)
* Working knowledge of best practices/standards (e.g., PCI DSS, HIPAA, State data breach laws) for implementing application-level data encryption

Experience and Education:

* Bachelor's degree in Computer Science, Information Security and Risk Management, Information Systems, Engineering or related major
* Security certification: CISSP, GIAC, GSEC or AWS Security.
* 10 years' progressive experience working in Information Technology with at least half of that directly in Information Security
* Minimum 3 years' experience in a security engineer role
* Advertising and marketing communications industry experience preferred

To Apply: send resume and coverletter to ipgrecruitingCorpsvs-IT@Interpublic.com

Please include the Job title in the subject line of your email